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REMARKS 

This application contains claims 55-105. Claims, 55, 71, 79, 94 and 102 have 
been amended. No new matter has been introduced. Reconsideration is respectfully 
requested. 

Claims 55-57, 59-64, 66-71, 79-81, 83-87, 89-94 and 102-104 were rejected 
under 35 U.S. C. 102(e) over Hunt (U.S. Patent 6,496,855). Independent claims 55, 79 
and 102 have been amended to further clarify the distinction of the claimed invention 
over the cited art. Applicant respectfully traverses the rejection of claims 68-78, 91- 
101, 104 and 105. Dependent claims 71 and 94 has been amended to correct 
typographical errors. 

Hunt describes a Web site registration proxy system, in which a registration 
agent site serves as an intermediary between an Internet user and other sites. The agent 
allows users to register with new sites automatically and to move between registered 
sites via a single interface (abstract). A registration processing system is responsible for 
submitting user data to new sites, and includes the functionality of identifying and 
resolving conflicts between the user's privacy preferences and the site's policies (coL 5, 
lines 34-45). 

Claim 55, as amended, recites a computer- implemented method for privacy 
management that permits an enterprise to assign different, respective privacy policies to 
different Web pages on the same Web site, which belongs to the enterprise. Different 
portions of the information that a user exchanges with the Web site are subject to 
different privacy policies, depending on the Web page through which die information is 
exchanged with the enterprise. Hunt neither teaches nor suggests a method by which 
different privacy policies can be maintained and applied on different pages in the same 
Web site of the same enterprise, as required by claim 55. 

In the Examiner's response to this argument in the present Official Action, the 
Examiner stated that "Hunt uses the registration agent to query the forms requested for 
registration," and "the 'forms' are interpreted to have the same meaning as 'Web 
pages'...." This interpretation is questionable at best, since claim 55 recites "a linked 
collection of Web pages... on a Web site," and Hunt makes no suggestion of links 
between his forms. Even if the Examiner's interpretation were conceded to be tenable, 
however, Hunt makes no suggestion that different forms on the same Web site might 
have different privacy policies assigned to them , as would be required by claim 55 
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under this interpretation. On the contrary, in Hunt's Site Data Requirements (col. 6, 
lines 6-31), he notes that a site may include multiple forms (line 12) and differentiates 
between the URI and data fields of different forms (lines 15-27), but mentions only "the 
site's data privacy policies" (line 13), without differentiating in this respect between 
different forms. 

The Examiner then went on to state that "Hunt explains how a user can specify 
what information can be release[d] to a site and how different fields in the form or 
forms used can have different privacy policies attached." This statement is self- 
contradictory and incorrect. The user of Hunt's system is able to choose an 
"information policy" to apply to each of a number of different categories of information 
(col. 7, lines 52-65). This policy will control what information is released to each site, 
based on that site's privacy policy. Filling in the forms in diis manner, however, does 
not determine or change the privacy policies that are attached to the forms . The forms 
are always subject to the privacy policy of the Web site, whether or not the registration 
agent fills out the forms or decides not to release the user information. Again, Hunt 
makes no suggestion of assigning different privacy policies to different elements in an 
enterprise Web site, whether these elements are forms or Web pages. 

Turning to the specific grounds of rejection of claim 55, the Examiner 
maintained that the step of "assigning respective, non-uniform privacy policies to at 
least some of the Web pages" on a Web site maintained by an enterprise is disclosed by 
Hunt in col. 7, lines 52-65. As noted above, this passage refers to information policies 
chosen by the user to apply to different categories of user data. The privacy policies 
tiiat are assigned to the Web pages are neither determined nor changed by the user 
choices. Furthermore, in order to clarify the distinction of the claimed invention over 
Hunt, Applicant has amended claim 55 to state explicitly that the enterprise that 
maintains the Web site, and not the user, assigns the non-uniform privacy policies. 

The Examiner went on to identify the step of "providing to the user... the 
respective privacy policies for the first and second Web pages" with col. 6, line 53, 
through col. 7, line 31, in Hunt. In fact, the cited passage refers to the user profile, 
which holds the user's privacy preferences, and makes no mention or suggestion of 
providing different Web page privacy policies to the user. 

As Applicant has pointed out in the past, MPEP 2131 states: 
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TO ANTICIPATE A CLAIM, THE REFERENCE MUST TEACH EVERY 
ELEMENT OF THE CLAIM. "A claim is anticipated only if each and every 
element as set forth in the claim is found, either expressly or inherendy 
described, in a single prior art reference." Verdegaal Bros. v. Union Oil Co. of 
California ,814 F.2d 628, 631, 2 USPQ2d 1051, 1053 (Fed. Cir. 1987)... "The 
identical invention must be shown in as complete detail as is contained in the,., 
claim." Richardson v. Suzuki Motor Co ., 868 F.2d 1226, 1236, 9 USPQ2d 
1913, 1920 (Fed. Cir. 1989). 

Hunt is very far from showing the "identical invention" to claim 55. Therefore, claim 
55 is believed to be patentable over the cited art. In view of the patentability of claim 
55, claims 56, 57, 59-64, 66 and 67, which depend from claim 55, are also believed to 
be patentable. 

Claim 68 recites a computer-implemented mediod for privacy management in 
which nodes in a body of information are assigned privacy rules hierarchically. Each 
node (except the root node) has one or more ancestors in the hierarchy, and at least 
some of the nodes have their own respective privacy rules. The computer computes the 
specific privacy policy for any given node by combining die privacy rules assigned to 
the given node with the privacy policies of the ancestor nodes of the given node in the 
hierarchy. Hunt neither teaches nor suggests any sort of method for computation of 
privacy policies by combining privacy rules from different sources , and he certainly 
fails to suggest combining privacy rules over a group of root and ancestor nodes in a 
hierarchy. 

In the Examiner's response to this argument in the present Official Action, the 
Examiner asserted that "computing" has the same meaning as "determining" [privacy 
policy], and diat the "multiple nodes" recited in the claim have the same meaning as the 
fields in Hunt's forms (page 3, lines 2-4, in the Official Action). This assertion of 
equivalence is without foundation, since there is no hint in Hunt that the fields in the 
forms are somehow arranged in a hierarchy, with root nodes and ancestor nodes as 
required by claim 68. Furthermore, claim 68 recites a specific method of computing 
privacy policy: by combining die privacy rules assigned to the given node with those 
assigned to its ancestor nodes . Since Hunt's fields have no defined hierarchy or 
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ancestors, a person of ordinary skill in the art would not have been able to arrive at 
such a method based on the system described in Hunt. 

In the specific grounds of rejection of claim 68 (page 7 in die Official Action), 
die Examiner stated that die "root node" recited in the claim is the "same as 'core 
profile'" in Hunt, and diat the "ancestor nodes" are the "same as *site specific profile'" 
in Hunt. This interpretation of Hunt contradicts the Examiner's own earlier 
interpretation, mentioned above, in which the "nodes" recited in the claim were equated 
with the fields in Hunt's forms. In any case, neither interpretation identifies nodes that 
have a hierarchy or root and ancestor nodes. It would appear that in the specific 
grounds of rejection, the Examiner has asserted that Hunt's "site specific profile" is 
somehow the ancestor of Hunt's "core profile," but diere is no foundation in Hunt to 
support the existence of such a relationship. 

The Examiner then went on to maintain tiiat die step of "computing a node 
privacy policy" is shown by Hunt in col. 6, lines 6-43. This passage describes how 
Site Data Requirements (SDR) are determined and stored in a registration profile 
database. The SDR includes die site's data privacy policies (line 13). The cited 
passage does not contain the slightest hint diat such the SDR (or any privacy policies) 
are computed by combining die privacy rules of different nodes , let alone combining the 
privacy policy of a node with those of its ancestor nodes, as required by claim 68. 

Therefore, claim 68 is believed to be patentable over the cited art. In view of 
die patentability of claims 68, claims 69-71, which depend from claim 68, are also 
believed to be patentable. 

Notwithstanding the patentability of independent claims 55 and 68, the 
dependent claims are also believed to recite independently-patentable subject matter. 
For the sake of brevity, Applicant will refrain from arguing the patentability of every 
one of the dependent claims, but a number of examples will be presented below. 

Claim 60 depends from claim 55 and refers to a user who has exchanged 
information with a first Web page on an enterprise Web site, subject to the privacy 
policy that is assigned to the first Web page. Claim 60 adds the limitation that this user 
is informed of a difference in the privacy policy assigned to a second Web page relative 
to that of die first Web page before the user exchanges further information with the 
second Web page. In rejecting diis claim, the Examiner cited col. 5, lines 44-45, in 
Hunt. This passage refers to "identifying and resolving conflicts between die user's 
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privacy preferences and the site's policies." Hunt makes no suggestion that there might 
be differences in the privacy policies assigned to different Web pages on the site, and 
thus does not even hint that a user might be informed of these differences after 
exchanging information with a first Web page on the site, as required by claim 60. 
Therefore, claim 60 is believed to be independently patentable. 

Claim 61 depends from claim 55 and adds the limitation that when a change is 
made in the privacy policy assigned to a Web page, a user who has already exchanged 
information with that Web page subject to the previous privacy policy is informed of 
die change. In rejecting this claim, the Examiner cited col. 3, lines 52-67, in Hunt. 
The cited paragraph describes the functions of the registration agent site, which 
provides a central repository of all personal information that a user is prepared to give 
out to Web sites. Hunt makes no mention of changes in site (or page) privacy policies. 
He therefore cannot be taken to suggest a step of informing a user of such a change, let 
alone informing a user who has already submitted information to the site. Therefore, 
claim 61 is believed to be independendy patentable. 

Claim 67 depends from claim 55 and adds the limitation that different user 
classes are defined, and different privacy policies are defined for the same Web page to 
apply to the different user classes. In rejecting this claim, the Examiner cited col. 7, 
lines 52-65. This passage refers to grouping of user information belonging to a single, 
given user. Hunt makes no mention of different user classes, and thus does not even 
faintly suggest that different user classes might be subject to different privacy policies 
on the same Web page. Therefore, claim 67 is believed to be independendy patentable. 

Claim 71 depends from claim 68 and adds the limitation that die privacy rules 
assigned to each node are represented as policy sections, which are written in XML and 
comprise an attribute identifying the parent of the node. In rejecting this claim, die 
Examiner cited col. 5, line 55, through col. 6, line 5, in Hunt, and maintained (on page 
3 of the Official Action) that "instead of XML, HTML is used, the nodes as claimed 
are anodier term for die level of policy that the user assigns to a field or attribute of 
information. " Applicant notes diat this is the third different reading that the Examiner 
has applied to the "nodes" recited in the claims and contradicts the reading that the 
Examiner applied to independent claim 68. In the preceding paragraph of the Official 
Action, the Examiner interpreted "nodes" as having "the same meaning as the fields in 
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the forms used in Hunt." Regardless of which interpretation is chosen, however, Hunt 
still fails to meet all the limitations of the claims. 

In the passage cited by the Examiner with respect to claim 71, Hunt describes 
"a simple way to supply data to sites": The registration agent submits user information 
to Web sites using HTML forms and HTTP commands. There is no mention in this 
passage or anywhere else in Hunt that HTML might be used to represent privacy policy 
sections. Even if diere were such a mention, HTML is a different language from XML, 
with different properties. Furthermore, Hunt neither teaches nor suggests that policy 
sections written in any markup language might have an attribute identifying a parent 
node in a hierarchy, as required by this claim. Therefore, claim 71 is believed to be 
independently patentable. 

Claims 79-81, 83-87, 89-94 and 102-104 recite apparatus and computer 
software products that operate on principles similar to the methods of claims 55-57, 59- 
64, 66-71. Claims 79-81, 83-87, 89-94 and 102-104 are therefore believed to be 
patentable for the reasons explained above. 

Claims 58, 65, 72-78, 82, 88, 95-101 and 105 were rejected under 35 U.S.C. 
103(a) over Hunt in view of Itabashi et al. (U.S. Patent 6,308,203). Applicant 
respectfully traverses this rejection. 

Claims 58, 65, 82 and 88 depend from independent claims 55 and 79. In view 
of the patentability of these independent claims, as explained above, claims 58, 65, 82 
and 88 are also believed to be patentable. Furthermore, claims 58 and 82 recite 
limitations similar to those of independent claims 72 and 95 and are believed to be 
independently patentable for the reasons explained below with respect to claim 72. 

Independent claim 72 recites a computer-implemented method for privacy 
management in which an application requesting private user information is queried in 
order to determine its compliance with the privacy policies subject to which the 
information in question was received from the user. The query to the application is 
issued when the application submits its request . In other words, claim 72 recites the 
sequential steps of intercepting a request from an application and then querying the 
application to determine compliance before providing user information to the 
application. 

Itabashi describes a method and apparatus for providing user personal 
information to an information provider by pre-storing the personal information in a 
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profile database of a server. When the user accesses a service provider device, and the 
service provider device requests personal information, the request is referred to the 
server. The server reads the personal information from the database and transfers it to 
the service provider device (abstract and col. 7, lines 35-65). 

In rejecting claim 72, the Examiner cited steps S21 and S27 in Itabashi and col. 
4, lines 30-53, as purportedly teaching the step of "intercepting a request from an 
application." Steps S21 and S27 refer to transfer of a request and control data from the 
user's terminal device to a proxy as part of a processing operation in which the user 
receives the provision of a service (col. 8, lines 15-18). These steps have nothing to do 
with interception of any sort of communications. The cited passage in col. 4 refers to 
detecting simultaneous access operations made from a user (lines 30-35) and detecting 
unauthorized access to the personal information (lines 36-40). The purpose of this 
detection is to prevent another user from making unauthorized use of the personal 
information recorded in the server (col. 13, lines 3-11). 

Thus, even if Itabashi 's detection of user conmiunications could be considered 
"interception," it relates solely to detection of unauthorized access by other users. 
There is no reason to query these unauthorized users to determine their compliance with 
privacy policies, since by definition they are in violation of the server's privacy policies 
and will be denied access immediately. Therefore, a person of ordinary skill in the art 
could not have learned the step of "intercepting a request from an application" as a 
precursor to "querying the application to determine compliance... with the privacy 
policies" from Itabashi. The Examiner acknowledged (page 13, lines 3-4, in the 
Official Action) that such a teaching is also absent from Hunt. 

Consequently, a person of ordinary skill in the art would have been unable and 
unmotivated to combine the teachings of Hunt and Itabashi to arrive at the method 
recited in claim 72. This claim is therefore believed to be patentable over the cited art. 
In view of the patentability of claim 72, dependent claims 73-78 are also believed to be 
patentable. 

Furthermore, these dependent claims are believed to recite independently- 
patentable subject matter, notwithstanding the patentability of claim 72. For example, 
claim 74 recites the added limitation that non-uniform privacy policies are associated 
with different resources of the enterprise. This limitation is similar to the limitations of 
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claim 55. As explained above, Hunt neither teaches nor suggests these limitations. 
Therefore, claim 74 is believed to be independently patentable. 

Claims 95-101 and 105 recite apparatus and computer software products that 
operate on principles similar to the methods of claims 72-78. Therefore, for the reasons 
explained above with respect to claims 72-78, claims 95-101 and 105 are also believed 
to be patentable over the cited art. 

Applicant believes the amendments and remarks presented hereinabove to be 
fully responsive to all of the grounds of rejection raised by the Examiner. In view of 
these amendments and remarks, Applicant respectfully submits that all of the claims in 
the present application are in order for allowance. Notice to this effect is hereby 
requested. 

Date: December 19, 2005 Respectftrily. submitted 
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